From cbb26bf0f65d351c7dd2c290d66c3f3b2cd24785 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 5 Oct 2023 17:10:17 +0000 Subject: [PATCH] fix: Gemfile & Gemfile.lock to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-1290051 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-1290052 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-2400638 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237231 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-3237232 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-569599 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-569600 - https://snyk.io/vuln/SNYK-RUBY-ACTIONPACK-5741907 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-2803851 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-560837 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-569156 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-569601 - https://snyk.io/vuln/SNYK-RUBY-ACTIONVIEW-632514 - https://snyk.io/vuln/SNYK-RUBY-ACTIVEJOB-72640 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-1080913 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-2960802 - https://snyk.io/vuln/SNYK-RUBY-ACTIVERECORD-3237239 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3237242 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-3360028 - https://snyk.io/vuln/SNYK-RUBY-ACTIVESUPPORT-569598 - https://snyk.io/vuln/SNYK-RUBY-ADDRESSABLE-1316242 - https://snyk.io/vuln/SNYK-RUBY-ERUBIS-20482 - https://snyk.io/vuln/SNYK-RUBY-GLOBALID-3237234 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-22023 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168317 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-3168318 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-474102 - https://snyk.io/vuln/SNYK-RUBY-LOOFAH-72548 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1055008 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1293239 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1583442 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-1726792 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20299 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20367 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20368 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-20432 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-22013 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-22014 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2413994 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2620374 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630623 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2630898 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-2840634 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3052880 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-3357693 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-459107 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-534637 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-552159 - https://snyk.io/vuln/SNYK-RUBY-NOKOGIRI-72433 - https://snyk.io/vuln/SNYK-RUBY-RACK-1061917 - https://snyk.io/vuln/SNYK-RUBY-RACK-2848599 - https://snyk.io/vuln/SNYK-RUBY-RACK-2848600 - https://snyk.io/vuln/SNYK-RUBY-RACK-3237240 - https://snyk.io/vuln/SNYK-RUBY-RACK-3356639 - https://snyk.io/vuln/SNYK-RUBY-RACK-538324 - https://snyk.io/vuln/SNYK-RUBY-RACK-569066 - https://snyk.io/vuln/SNYK-RUBY-RACK-572377 - https://snyk.io/vuln/SNYK-RUBY-RACK-72567 - https://snyk.io/vuln/SNYK-RUBY-RAILS-1071903 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-22025 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-2935879 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168316 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168646 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168647 - https://snyk.io/vuln/SNYK-RUBY-RAILSHTMLSANITIZER-3168648 - https://snyk.io/vuln/SNYK-RUBY-RAILTIES-20454 - https://snyk.io/vuln/SNYK-RUBY-RAKE-552000 - https://snyk.io/vuln/SNYK-RUBY-SPROCKETS-22032 - https://snyk.io/vuln/SNYK-RUBY-TZINFO-2958048 --- Gemfile | 2 +- Gemfile.lock | 531 +++++++++++++++++++++++++++++---------------------- 2 files changed, 308 insertions(+), 225 deletions(-) diff --git a/Gemfile b/Gemfile index b38ee86..0353602 100644 --- a/Gemfile +++ b/Gemfile @@ -1,4 +1,4 @@ source 'https://rubygems.org' gem 'safemode', '<1.3.3' -gem 'spree_frontend', '<3.0.7' +gem 'spree_frontend', '~> 4.3' diff --git a/Gemfile.lock b/Gemfile.lock index 47f137b..962006f 100644 --- a/Gemfile.lock +++ b/Gemfile.lock @@ -1,177 +1,236 @@ GEM remote: https://rubygems.org/ specs: - actionmailer (4.2.10) - actionpack (= 4.2.10) - actionview (= 4.2.10) - activejob (= 4.2.10) + actioncable (7.0.8) + actionpack (= 7.0.8) + activesupport (= 7.0.8) + nio4r (~> 2.0) + websocket-driver (>= 0.6.1) + actionmailbox (7.0.8) + actionpack (= 7.0.8) + activejob (= 7.0.8) + activerecord (= 7.0.8) + activestorage (= 7.0.8) + activesupport (= 7.0.8) + mail (>= 2.7.1) + net-imap + net-pop + net-smtp + actionmailer (7.0.8) + actionpack (= 7.0.8) + actionview (= 7.0.8) + activejob (= 7.0.8) + activesupport (= 7.0.8) mail (~> 2.5, >= 2.5.4) - rails-dom-testing (~> 1.0, >= 1.0.5) - actionpack (4.2.10) - actionview (= 4.2.10) - activesupport (= 4.2.10) - rack (~> 1.6) - rack-test (~> 0.6.2) - rails-dom-testing (~> 1.0, >= 1.0.5) - rails-html-sanitizer (~> 1.0, >= 1.0.2) - actionview (4.2.10) - activesupport (= 4.2.10) + net-imap + net-pop + net-smtp + rails-dom-testing (~> 2.0) + actionpack (7.0.8) + actionview (= 7.0.8) + activesupport (= 7.0.8) + rack (~> 2.0, >= 2.2.4) + rack-test (>= 0.6.3) + rails-dom-testing (~> 2.0) + rails-html-sanitizer (~> 1.0, >= 1.2.0) + actiontext (7.0.8) + actionpack (= 7.0.8) + activerecord (= 7.0.8) + activestorage (= 7.0.8) + activesupport (= 7.0.8) + globalid (>= 0.6.0) + nokogiri (>= 1.8.5) + actionview (7.0.8) + activesupport (= 7.0.8) builder (~> 3.1) - erubis (~> 2.7.0) - rails-dom-testing (~> 1.0, >= 1.0.5) - rails-html-sanitizer (~> 1.0, >= 1.0.3) - activejob (4.2.10) - activesupport (= 4.2.10) - globalid (>= 0.3.0) - activemerchant (1.47.0) - activesupport (>= 3.2.14, < 5.0.0) + erubi (~> 1.4) + rails-dom-testing (~> 2.0) + rails-html-sanitizer (~> 1.1, >= 1.2.0) + active_storage_validations (0.9.5) + rails (>= 5.2.0) + activejob (7.0.8) + activesupport (= 7.0.8) + globalid (>= 0.3.6) + activemerchant (1.133.0) + activesupport (>= 4.2) builder (>= 2.1.2, < 4.0.0) i18n (>= 0.6.9) nokogiri (~> 1.4) - activemodel (4.2.10) - activesupport (= 4.2.10) - builder (~> 3.1) - activerecord (4.2.10) - activemodel (= 4.2.10) - activesupport (= 4.2.10) - arel (~> 6.0) - activesupport (4.2.10) - i18n (~> 0.7) - minitest (~> 5.1) - thread_safe (~> 0.3, >= 0.3.4) - tzinfo (~> 1.1) - acts_as_list (0.9.10) - activerecord (>= 3.0) - addressable (2.5.2) - public_suffix (>= 2.0.2, < 4.0) - arel (6.0.4) - autoprefixer-rails (7.2.5) - execjs - awesome_nested_set (3.0.3) - activerecord (>= 4.0.0, < 5) - bootstrap-sass (3.3.7) - autoprefixer-rails (>= 5.2.1) - sass (>= 3.3.4) - builder (3.2.3) - camertron-eprun (1.1.1) - cancancan (1.10.1) - canonical-rails (0.0.11) - rails (>= 3.1, < 5.0) - carmen (1.0.2) + rexml (~> 3.2.5) + activemodel (7.0.8) + activesupport (= 7.0.8) + activerecord (7.0.8) + activemodel (= 7.0.8) + activesupport (= 7.0.8) + activerecord-typedstore (1.5.1) + activerecord (>= 6.1) + activestorage (7.0.8) + actionpack (= 7.0.8) + activejob (= 7.0.8) + activerecord (= 7.0.8) + activesupport (= 7.0.8) + marcel (~> 1.0) + mini_mime (>= 1.1.0) + activesupport (7.0.8) + concurrent-ruby (~> 1.0, >= 1.0.2) + i18n (>= 1.6, < 2) + minitest (>= 5.1) + tzinfo (~> 2.0) + acts_as_list (1.1.0) + activerecord (>= 4.2) + auto_strip_attributes (2.6.0) + activerecord (>= 4.0) + autoprefixer-rails (10.4.15.0) + execjs (~> 2) + awesome_nested_set (3.6.0) + activerecord (>= 4.0.0, < 7.2) + babel-source (5.8.35) + babel-transpiler (0.7.0) + babel-source (>= 4.0, < 6) + execjs (~> 2.0) + bcrypt (3.1.19) + bootstrap (4.6.2) + autoprefixer-rails (>= 9.1.0) + popper_js (>= 1.16.1, < 2) + sassc-rails (>= 2.0.0) + builder (3.2.4) + cancancan (3.5.0) + canonical-rails (0.2.14) + rails (>= 4.1, <= 7.1) + carmen (1.1.3) activesupport (>= 3.0.0) - cldr-plurals-runtime-rb (1.0.1) - climate_control (0.2.0) - cocaine (0.5.8) - climate_control (>= 0.0.3, < 1.0) - colorize (0.8.1) - concurrent-ruby (1.0.5) - crass (1.0.3) - css_parser (1.6.0) - addressable - deface (1.0.2) - colorize (>= 0.5.8) - nokogiri (~> 1.6.0) - polyglot - rails (>= 3.1) - erubis (2.7.0) - execjs (2.7.0) - ffaker (1.32.1) - ffi (1.9.18) - font-awesome-rails (4.7.0.3) - railties (>= 3.2, < 5.2) - friendly_id (5.1.0) + concurrent-ruby (1.2.2) + crass (1.0.6) + date (3.3.3) + doorkeeper (5.6.6) + railties (>= 5) + erubi (1.12.0) + execjs (2.9.1) + ffi (1.16.3) + flag-icons-rails (3.4.6.1) + sass-rails + friendly_id (5.4.2) activerecord (>= 4.0.0) - globalid (0.4.1) - activesupport (>= 4.2.0) - highline (1.6.21) - htmlentities (4.3.4) - i18n (0.9.3) + friendly_id-mobility (1.0.4) + friendly_id (>= 5.0.0, < 5.5) + mobility (>= 1.0.1, < 2.0) + globalid (1.2.1) + activesupport (>= 6.1) + glyphicons (1.0.2) + highline (2.1.0) + i18n (1.14.1) concurrent-ruby (~> 1.0) - jquery-rails (4.3.1) + image_processing (1.12.2) + mini_magick (>= 4.9.5, < 5) + ruby-vips (>= 2.0.17, < 3) + inline_svg (1.9.0) + activesupport (>= 3.0) + nokogiri (>= 1.6) + jquery-rails (4.6.0) rails-dom-testing (>= 1, < 3) railties (>= 4.2.0) thor (>= 0.14, < 2.0) - json (1.8.6) - kaminari (0.17.0) - actionpack (>= 3.0.0) - activesupport (>= 3.0.0) - loofah (2.1.1) + jsbundling-rails (1.2.1) + railties (>= 6.0.0) + jsonapi-serializer (2.2.0) + activesupport (>= 4.2) + kaminari (1.2.2) + activesupport (>= 4.1.0) + kaminari-actionview (= 1.2.2) + kaminari-activerecord (= 1.2.2) + kaminari-core (= 1.2.2) + kaminari-actionview (1.2.2) + actionview + kaminari-core (= 1.2.2) + kaminari-activerecord (1.2.2) + activerecord + kaminari-core (= 1.2.2) + kaminari-core (1.2.2) + loofah (2.21.3) crass (~> 1.0.2) - nokogiri (>= 1.5.9) - mail (2.7.0) + nokogiri (>= 1.12.0) + mail (2.8.1) mini_mime (>= 0.1.1) - mime-types (3.1) - mime-types-data (~> 3.2015) - mime-types-data (3.2016.0521) - mini_mime (1.0.0) - mini_portile2 (2.1.0) - minitest (5.11.3) - monetize (1.7.0) - money (~> 6.9) - money (6.10.1) - i18n (>= 0.6.4, < 1.0) - nokogiri (1.6.8.1) - mini_portile2 (~> 2.1.0) - paperclip (4.2.4) - activemodel (>= 3.2.0) - activesupport (>= 3.2.0) - cocaine (~> 0.5.5) - mime-types - paranoia (2.1.5) - activerecord (~> 4.0) - polyamorous (1.3.3) - activerecord (>= 3.0) - polyglot (0.3.5) - premailer (1.11.1) - addressable - css_parser (>= 1.6.0) - htmlentities (>= 4.0.0) - premailer-rails (1.10.1) - actionmailer (>= 3, < 6) - premailer (~> 1.7, >= 1.7.9) - public_suffix (3.0.1) - rabl (0.11.8) - activesupport (>= 2.3.14) - rack (1.6.8) - rack-test (0.6.3) - rack (>= 1.0) - rails (4.2.10) - actionmailer (= 4.2.10) - actionpack (= 4.2.10) - actionview (= 4.2.10) - activejob (= 4.2.10) - activemodel (= 4.2.10) - activerecord (= 4.2.10) - activesupport (= 4.2.10) - bundler (>= 1.3.0, < 2.0) - railties (= 4.2.10) - sprockets-rails - rails-deprecated_sanitizer (1.0.3) - activesupport (>= 4.2.0.alpha) - rails-dom-testing (1.0.9) - activesupport (>= 4.2.0, < 5.0) - nokogiri (~> 1.6) - rails-deprecated_sanitizer (>= 1.0.1) - rails-html-sanitizer (1.0.3) - loofah (~> 2.0) - railties (4.2.10) - actionpack (= 4.2.10) - activesupport (= 4.2.10) - rake (>= 0.8.7) - thor (>= 0.18.1, < 2.0) - rake (12.3.0) - ransack (1.4.1) - actionpack (>= 3.0) - activerecord (>= 3.0) - activesupport (>= 3.0) + net-imap + net-pop + net-smtp + marcel (1.0.2) + method_source (1.0.0) + mini_magick (4.12.0) + mini_mime (1.1.5) + mini_portile2 (2.8.4) + minitest (5.20.0) + mobility (1.2.9) + i18n (>= 0.6.10, < 2) + request_store (~> 1.0) + mobility-ransack (1.2.2) + mobility (>= 1.0.1, < 2.0) + ransack (>= 1.8.0, < 5.0) + monetize (1.12.0) + money (~> 6.12) + money (6.16.0) + i18n (>= 0.6.4, <= 2) + net-imap (0.4.0) + date + net-protocol + net-pop (0.1.2) + net-protocol + net-protocol (0.2.1) + timeout + net-smtp (0.4.0) + net-protocol + nio4r (2.5.9) + nokogiri (1.15.4) + mini_portile2 (~> 2.8.2) + racc (~> 1.4) + paranoia (2.6.2) + activerecord (>= 5.1, < 7.1) + popper_js (1.16.1) + racc (1.7.1) + rack (2.2.8) + rack-test (2.1.0) + rack (>= 1.3) + rails (7.0.8) + actioncable (= 7.0.8) + actionmailbox (= 7.0.8) + actionmailer (= 7.0.8) + actionpack (= 7.0.8) + actiontext (= 7.0.8) + actionview (= 7.0.8) + activejob (= 7.0.8) + activemodel (= 7.0.8) + activerecord (= 7.0.8) + activestorage (= 7.0.8) + activesupport (= 7.0.8) + bundler (>= 1.15.0) + railties (= 7.0.8) + rails-dom-testing (2.2.0) + activesupport (>= 5.0.0) + minitest + nokogiri (>= 1.6) + rails-html-sanitizer (1.6.0) + loofah (~> 2.21) + nokogiri (~> 1.14) + railties (7.0.8) + actionpack (= 7.0.8) + activesupport (= 7.0.8) + method_source + rake (>= 12.2) + thor (~> 1.0) + zeitwerk (~> 2.5) + rake (13.0.6) + ransack (2.6.0) + activerecord (>= 6.0.4) + activesupport (>= 6.0.4) i18n - polyamorous (~> 1.1) - rb-fsevent (0.10.2) - rb-inotify (0.9.10) - ffi (>= 0.5.0, < 2) - responders (2.4.0) - actionpack (>= 4.2.0, < 5.3) - railties (>= 4.2.0, < 5.3) + request_store (1.5.1) + rack (>= 1.4) + responders (3.1.0) + actionpack (>= 5.2) + railties (>= 5.2) + rexml (3.2.6) + ruby-vips (2.1.4) + ffi (~> 1.12) ruby2ruby (2.4.0) ruby_parser (~> 3.1) sexp_processor (~> 4.6) @@ -181,83 +240,107 @@ GEM ruby2ruby (>= 2.0.6) ruby_parser (>= 3.2.0) sexp_processor (>= 4.3.0) - sass (3.5.5) - sass-listen (~> 4.0.0) - sass-listen (4.0.0) - rb-fsevent (~> 0.9, >= 0.9.4) - rb-inotify (~> 0.9, >= 0.9.7) + sass-rails (6.0.0) + sassc-rails (~> 2.1, >= 2.1.1) + sassc (2.4.0) + ffi (~> 1.9) + sassc-rails (2.1.2) + railties (>= 4.0.0) + sassc (>= 2.0) + sprockets (> 3.0) + sprockets-rails + tilt sexp_processor (4.10.0) - spree_api (3.0.6.1) - rabl (~> 0.11.6) - spree_core (= 3.0.6.1) - versioncake (~> 2.3.1) - spree_core (3.0.6.1) - activemerchant (~> 1.47.0) - acts_as_list (~> 0.6) - awesome_nested_set (~> 3.0.1) - cancancan (~> 1.10.1) - carmen (~> 1.0.0) - deface (~> 1.0.0) - ffaker (~> 1.16) - font-awesome-rails (~> 4.0) - friendly_id (~> 5.1.0) - highline (~> 1.6.18) - json (~> 1.7) - kaminari (~> 0.15, >= 0.15.1) - monetize (~> 1.1) - paperclip (~> 4.2.0) - paranoia (~> 2.1.0) - premailer-rails - rails (~> 4.2.2) - ransack (~> 1.4.1) - responders - sprockets-rails (~> 2.0) - state_machines-activerecord (~> 0.2) + spree_api (4.6.2) + bcrypt (~> 3.1) + doorkeeper (~> 5.3) + jsonapi-serializer (~> 2.1) + spree_core (= 4.6.2) + spree_core (4.6.2) + actionpack (>= 6.1) + actionview (>= 6.1) + active_storage_validations (~> 0.9, <= 0.9.5) + activejob (>= 6.1) + activemerchant (~> 1.67) + activemodel (>= 6.1) + activerecord (>= 6.1) + activerecord-typedstore + activestorage (>= 6.1) + activesupport (>= 6.1) + acts_as_list (>= 0.8) + auto_strip_attributes (~> 2.6) + awesome_nested_set (~> 3.3, >= 3.3.1) + cancancan (~> 3.2) + carmen (>= 1.0) + friendly_id (~> 5.2, >= 5.2.1) + friendly_id-mobility (~> 1.0.4) + highline (~> 2.0) + image_processing (~> 1.2) + kaminari (~> 1.2) + mobility (~> 1.2.9) + mobility-ransack (~> 1.2.1) + monetize (~> 1.9) + money (~> 6.13) + paranoia (~> 2.4) + railties (>= 6.1) + ransack (>= 2.3, < 3.0) + rexml + state_machines-activemodel (~> 0.7) + state_machines-activerecord (~> 0.6) stringex - truncate_html (= 0.9.2) - twitter_cldr (~> 3.0) - spree_frontend (3.0.6.1) - bootstrap-sass (>= 3.3.5.1, < 3.4) - canonical-rails (~> 0.0.4) - jquery-rails (~> 4.1) - spree_api (= 3.0.6.1) - spree_core (= 3.0.6.1) - sprockets (3.7.1) + validates_zipcode + spree_frontend (4.6.0) + babel-transpiler (~> 0.7) + bootstrap (~> 4.0) + canonical-rails (~> 0.2, >= 0.2.10) + flag-icons-rails (~> 3.4) + glyphicons (~> 1.0) + inline_svg (~> 1.5) + jquery-rails (~> 4.3) + jsbundling-rails + responders + sass-rails (>= 5) + spree_api (>= 4.6.0) + spree_core (>= 4.6.0) + sprockets (~> 4.0) + turbo-rails + sprockets (4.2.1) concurrent-ruby (~> 1.0) - rack (> 1, < 3) - sprockets-rails (2.3.3) - actionpack (>= 3.0) - activesupport (>= 3.0) - sprockets (>= 2.8, < 4.0) + rack (>= 2.2.4, < 4) + sprockets-rails (3.4.2) + actionpack (>= 5.2) + activesupport (>= 5.2) + sprockets (>= 3.0.0) state_machines (0.5.0) - state_machines-activemodel (0.5.0) - activemodel (>= 4.1, < 5.2) + state_machines-activemodel (0.8.0) + activemodel (>= 5.1) state_machines (>= 0.5.0) - state_machines-activerecord (0.5.0) - activerecord (>= 4.1, < 5.2) - state_machines-activemodel (>= 0.5.0) - stringex (2.8.2) - thor (0.20.0) - thread_safe (0.3.6) - truncate_html (0.9.2) - twitter_cldr (3.6.0) - camertron-eprun - cldr-plurals-runtime-rb (~> 1.0) - tzinfo - tzinfo (1.2.4) - thread_safe (~> 0.1) - versioncake (2.3.1) - actionpack (>= 3.2) - activesupport (>= 3.2) - railties (>= 3.2) - tzinfo + state_machines-activerecord (0.8.0) + activerecord (>= 5.1) + state_machines-activemodel (>= 0.8.0) + stringex (2.8.6) + thor (1.2.2) + tilt (2.3.0) + timeout (0.4.0) + turbo-rails (1.4.0) + actionpack (>= 6.0.0) + activejob (>= 6.0.0) + railties (>= 6.0.0) + tzinfo (2.0.6) + concurrent-ruby (~> 1.0) + validates_zipcode (0.5.2) + activemodel (>= 4.2.0) + websocket-driver (0.7.6) + websocket-extensions (>= 0.1.0) + websocket-extensions (0.1.5) + zeitwerk (2.6.12) PLATFORMS ruby DEPENDENCIES safemode (< 1.3.3) - spree_frontend (< 3.0.7) + spree_frontend (~> 4.3) BUNDLED WITH - 1.15.4 + 1.17.3